Login or Register to Ask a Question and Join Our Community


Web Development

Apache authz

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums Web Development Apache authz
# 1  
Old 02-09-2015
Apache authz
Hi All,

I have configured my Apache HTTP Server to authenticate users using SSL certificates and to forward the CN of the user from the certificate in the HTTP header to the backend server.

The server config also does a look up in Active Directory to make sure the user exists and to perform some basic authz (e.g. the user is in a particular group).

Is it possible to retrieve the user's group/role memberships from AD and forward these to the backend server in an HTTP header? Any pointers please?

Many thanks
Simon
Login or Register to Ask a Question

Previous Thread | Next Thread

8 More Discussions You Might Find Interesting

1. Red Hat

Process not running: /opt/java15/jdk/bin/java -classpath /opt/apache/apache-ant-1.7.0-mod/lib/ant-la

Have no idea on what the below error message is: Process not running: /opt/java15/jdk/bin/java -classpath /opt/apache/apache-ant-1.7.0-mod/lib/ant-launcher.jar org.apache.tools.ant.launch.Launcher -buildfile build.xml dist. Any help? (3 Replies)
Discussion started by: gull05
3 Replies

2. Web Development

Apache module development on apache 2.2

Hi, I'm new to developing modules for Apache. I understand the basics now and can develop something simple which allows a 'GET' request to happen, but what I want to do is actually 'POST' information to my site. I know the basic POST Request works and I can see that it is post by looking at... (2 Replies)
Discussion started by: fishman2001
2 Replies

3. UNIX for Dummies Questions & Answers

Apache help

Hi, I am new to unix and am trying to determine if apache is installed on my server. Is there a command to determine the running version or if it is even installed. I appreciate your help. Thanks, Eric (2 Replies)
Discussion started by: ejbrever
2 Replies

4. IP Networking

Apache

I want to have multiple domains to be configured in apache web server on redhat linux can i have that without DNS server being configured. What all i have to do for that.What all to configure ? please note that i need to access the site by its name not by IP . I want this in a LAN . I dont... (4 Replies)
Discussion started by: Vijayanand
4 Replies

5. IP Networking

Apache

I want to have multiple domains to be configured in apache web server on redhat linux can i have that without DNS server configured. What all i have to do for that.What all to configure ? And importantly i want the site be accessed by name rather IP address. Please help me ... (1 Reply)
Discussion started by: Vijayanand
1 Replies

6. IP Networking

Apache

I want to have multiple domains to be configured in apache web server on redhat linux Please help me Vijay (2 Replies)
Discussion started by: Vijayanand
2 Replies

7. UNIX for Dummies Questions & Answers

Apache!

How do you tell which apache version is currently running. the situation is that I got multiply httpd.conf files on a solaris 2.6 server and I need to tell which version is what? I have checked the httpd.conf but no joy Thanks in Advance (3 Replies)
Discussion started by: hassan2
3 Replies

8. UNIX for Dummies Questions & Answers

apache

how must httpd.conf be configured to exec the php files? (2 Replies)
Discussion started by: user666
2 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

plack::middleware::auth::basic

Plack::Middleware::Auth::Basic(3pm)			User Contributed Perl Documentation		       Plack::Middleware::Auth::Basic(3pm)

NAME

       Plack::Middleware::Auth::Basic - Simple basic authentication middleware

SYNOPSIS

	 use Plack::Builder;
	 my $app = sub { ... };

	 builder {
	     enable "Auth::Basic", authenticator => &authen_cb;
	     $app;
	 };

	 sub authen_cb {
	     my($username, $password) = @_;
	     return $username eq 'admin' && $password eq 's3cr3t';
	 }

DESCRIPTION

       Plack::Middleware::Auth::Basic is a basic authentication handler for Plack.

CONFIGURATION

       authenticator
	   A callback function that takes username and password supplied and returns whether the authentication succeeds. Required.

	   Authenticator can also be an object that responds to "authenticate" method that takes username and password and returns boolean, so
	   backends for Authen::Simple is perfect to use:

	     use Authen::Simple::LDAP;
	     enable "Auth::Basic", authenticator => Authen::Simple::LDAP->new(...);

       realm
	   Realm name to display in the basic authentication dialog. Defaults to restricted area.

LIMITATIONS

       This middleware expects that the application has a full access to the headers sent by clients in PSGI environment. That is normally the
       case with standalone Perl PSGI web servers such as Starman or HTTP::Server::Simple::PSGI.

       However, in a web server configuration where you can't achieve this (i.e. using your application via Apache's mod_cgi), this middleware
       does not work since your application can't know the value of "Authorization:" header.

       If you use Apache as a web server and CGI to run your PSGI application, you can either a) compile Apache with
       "-DSECURITY_HOLE_PASS_AUTHORIZATION" option, or b) use mod_rewrite to pass the Authorization header to the application with the rewrite
       rule like following.

	 RewriteEngine on
	 RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]

AUTHOR

       Tatsuhiko Miyagawa

SEE ALSO

       Plack

perl v5.14.2							    2012-06-21				       Plack::Middleware::Auth::Basic(3pm)